$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LEYUN/Le5Nsz9BGcOUJgtf2irGzpKAuC8.roa File: Le5Nsz9BGcOUJgtf2irGzpKAuC8.roa (raw, json) Hash identifier: R9mLT+81nuJ4kxeqsIAavXgR87wIPfWUTb98vhKuVME= Subject key identifier: 2D:EE:4D:B3:3F:41:19:C3:94:26:0B:5F:DA:2A:C6:CE:92:80:B8:2F Certificate issuer: /CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990 Certificate serial: 0262 Authority key identifier: 53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/Le5Nsz9BGcOUJgtf2irGzpKAuC8.roa Signing time: Mon 10 Feb 2025 14:05:41 +0000 ROA not before: Mon 10 Feb 2025 14:05:41 +0000 ROA not after: Tue 14 Oct 2025 15:30:32 +0000 asID: 18040 IP address blocks: 160.191.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 14:36:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 610 (0x262) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5322E61AE8C8DD8953E1E6BDC96AE4827AFCF990 Validity Not Before: Feb 10 14:05:41 2025 GMT Not After : Oct 14 15:30:32 2025 GMT Subject: CN=2DEE4DB33F4119C394260B5FDA2AC6CE9280B82F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:ee:de:f4:ce:5e:12:0b:89:9a:bc:93:b1:f6: ef:38:6b:17:45:25:02:57:1f:41:98:c3:e5:df:e6: 76:1e:0d:7d:0c:4b:c1:c2:a2:ae:ec:75:ad:2b:48: c3:96:90:9b:19:78:8b:4a:ed:8f:ca:76:40:af:ed: 4d:a8:8c:9e:c7:a1:ad:14:d8:84:7f:f5:33:30:dc: 4d:70:e1:05:c5:ea:ee:1c:3d:01:f5:47:1b:3b:a5: 56:a7:ed:a0:0b:ee:e0:f2:0a:63:65:3f:13:06:11: 22:41:1e:59:3a:ff:b5:3b:78:68:af:50:57:85:24: d9:91:83:27:b8:38:ad:fc:78:a6:9f:c5:0c:f8:bf: 36:25:15:fe:fb:b6:21:fa:19:48:49:f1:05:de:87: f3:3d:58:36:42:a9:a4:77:60:0a:27:c9:d0:d9:3d: 9d:81:25:68:b3:58:f7:92:fa:3a:b2:04:11:aa:4f: 96:07:8d:39:05:1e:88:71:ba:08:66:0e:7f:77:3d: db:27:2b:8f:eb:f1:66:11:2f:7b:5b:4d:8c:3c:a1: 22:4f:60:36:7e:36:fb:a1:6b:c3:d8:4f:c7:15:c1: ac:6f:b5:e6:6e:96:50:aa:b7:f3:69:8b:b6:a8:cb: d0:44:b9:59:ba:69:2f:58:ce:e4:fa:f9:60:d5:de: a9:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:EE:4D:B3:3F:41:19:C3:94:26:0B:5F:DA:2A:C6:CE:92:80:B8:2F X509v3 Authority Key Identifier: keyid:53:22:E6:1A:E8:C8:DD:89:53:E1:E6:BD:C9:6A:E4:82:7A:FC:F9:90 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/UyLmGujI3YlT4ea9yWrkgnr8-ZA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UyLmGujI3YlT4ea9yWrkgnr8-ZA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LEYUN/Le5Nsz9BGcOUJgtf2irGzpKAuC8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 160.191.6.0/24 Signature Algorithm: sha256WithRSAEncryption 45:45:83:3c:94:5f:27:c9:b5:43:48:1b:54:8e:bb:37:02:29: 92:0f:7e:40:a8:e9:c1:64:1a:a6:1c:9c:10:26:b4:80:3a:1c: 70:2c:af:7f:cb:60:6a:4e:85:17:a5:6a:c4:12:d9:93:29:90: 49:64:d3:e4:53:d5:69:8e:a0:8c:a3:7b:2a:e3:08:85:a1:db: 91:a6:67:2f:ec:e8:fe:8a:8a:ba:f2:fb:d2:51:ff:c2:bb:a7: d3:bb:df:3d:f9:9d:a4:db:de:f4:95:ef:8a:6e:9f:66:b1:72: 57:c8:f5:77:11:ce:1f:09:c1:8a:94:45:e1:a1:b4:ba:52:da: ad:f5:15:67:be:a7:eb:f8:e5:45:d1:2f:26:4c:ec:d9:6d:c0: 23:0a:e9:d2:3d:9f:14:3a:08:3c:de:63:7e:61:66:85:34:ca: f7:a0:45:10:d0:59:76:cf:1a:a2:4e:aa:2d:5a:ab:36:71:89: 06:2c:01:9b:76:19:79:6d:9b:9e:a5:ae:ac:32:b6:6c:e5:e1: dc:4f:dd:92:ec:35:64:f4:75:06:4a:af:56:e3:09:61:04:a8: 83:57:7f:89:44:29:a6:69:14:01:fc:2a:0b:ec:a4:53:93:9b: c2:4e:47:af:40:b0:6a:e5:a2:64:29:e8:b5:21:7e:af:54:fa: d1:84:23:6c -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICAmIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTMy MkU2MUFFOEM4REQ4OTUzRTFFNkJEQzk2QUU0ODI3QUZDRjk5MDAeFw0yNTAyMTAx NDA1NDFaFw0yNTEwMTQxNTMwMzJaMDMxMTAvBgNVBAMTKDJERUU0REIzM0Y0MTE5 QzM5NDI2MEI1RkRBMkFDNkNFOTI4MEI4MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo7t70zl4SC4mavJOx9u84axdFJQJXH0GYw+Xf5nYeDX0MS8HC oq7sda0rSMOWkJsZeItK7Y/KdkCv7U2ojJ7Hoa0U2IR/9TMw3E1w4QXF6u4cPQH1 Rxs7pVan7aAL7uDyCmNlPxMGESJBHlk6/7U7eGivUFeFJNmRgye4OK38eKafxQz4 vzYlFf77tiH6GUhJ8QXeh/M9WDZCqaR3YAonydDZPZ2BJWizWPeS+jqyBBGqT5YH jTkFHohxughmDn93PdsnK4/r8WYRL3tbTYw8oSJPYDZ+Nvuha8PYT8cVwaxvteZu llCqt/Npi7aoy9BEuVm6aS9YzuT6+WDV3qk9AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQULe5Nsz9BGcOUJgtf2irGzpKAuC8wHwYDVR0jBBgwFoAUUyLmGujI3YlT4ea9 yWrkgnr8+ZAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTEVZVU4v VXlMbUd1akkzWWxUNGVhOXlXcmtnbnI4LVpBLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VeUxtR3VqSTNZbFQ0ZWE5eVdya2ducjgtWkEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MRVlVTi9MZTVOc3o5QkdjT1VKZ3RmMmly R3pwS0F1Qzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoL8G MA0GCSqGSIb3DQEBCwUAA4IBAQBFRYM8lF8nybVDSBtUjrs3AimSD35AqOnBZBqm HJwQJrSAOhxwLK9/y2BqToUXpWrEEtmTKZBJZNPkU9VpjqCMo3sq4wiFoduRpmcv 7Oj+ioq68vvSUf/Cu6fTu989+Z2k2970le+Kbp9msXJXyPV3Ec4fCcGKlEXhobS6 Utqt9RVnvqfr+OVF0S8mTOzZbcAjCunSPZ8UOgg83mN+YWaFNMr3oEUQ0Fl2zxqi TqotWqs2cYkGLAGbdhl5bZuepa6sMrZs5eHcT92S7DVk9HUGSq9W4wlhBKiDV3+J RCmmaRQB/CoL7KRTk5vCTkevQLBq5aJkKei1IX6vVPrRhCNs -----END CERTIFICATE-----Generated at Mon Apr 7 12:59:30 2025 by rpki-client